Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/DTDtIhv0Ei-gppIAQPJXRkMxev0.roa
File: DTDtIhv0Ei-gppIAQPJXRkMxev0.roa (raw, json)
Hash identifier: oiSCpJ9FB91VOAZTc8tPqdm1FqQHp4Lx7TCkUm+IiME=
Subject key identifier: 0D:30:ED:22:1B:F4:12:2F:A0:A6:92:00:40:F2:57:46:43:31:7A:FD
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 018A04D3CE73F04631E48DFDC650B60FC61B
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/DTDtIhv0Ei-gppIAQPJXRkMxev0.roa
Signing time: Thu 17 Aug 2023 18:48:24 +0000
ROA not before: Thu 17 Aug 2023 18:48:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 85.208.44.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:04:d3:ce:73:f0:46:31:e4:8d:fd:c6:50:b6:0f:c6:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Aug 17 18:48:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d30ed221bf4122fa0a6920040f2574643317afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:86:92:ff:1b:8e:b1:8d:90:16:fc:a7:53:03:
0c:b4:ad:b2:7b:d3:a9:b5:00:27:a6:90:7e:56:c3:
9b:00:af:27:bb:f1:9e:68:2a:e1:54:fd:46:07:f6:
4e:47:d7:ad:4c:a7:5e:1a:db:d7:36:ce:38:89:0b:
c2:2a:5c:5f:26:4a:60:58:42:9b:7d:89:a0:25:be:
c5:6b:1c:ef:61:34:7b:eb:94:c6:cb:f5:f8:1f:4a:
ad:d1:65:5d:6a:2a:d7:c4:00:a5:96:d9:5a:7a:bd:
f0:60:cb:70:92:78:10:68:85:84:98:e1:b2:8a:75:
92:73:d4:43:f6:9d:0f:50:90:fb:26:34:d9:7f:2c:
f6:51:03:2d:b0:c4:94:21:4c:89:b1:a6:80:a2:ea:
36:f5:3b:02:1a:95:b0:97:c9:35:d4:3b:9d:be:9a:
c4:52:57:07:d9:48:06:15:a5:eb:da:94:aa:09:f5:
b9:37:8d:cf:30:6c:97:32:a5:b1:e8:13:78:99:f6:
d1:4d:30:34:fb:44:b1:c5:b0:2c:e3:bb:96:2e:7e:
4e:4c:88:03:eb:99:ac:c4:6d:35:a8:c8:61:ca:3c:
05:22:2a:b5:fe:d1:e5:0b:b5:c0:2e:68:09:e4:65:
fa:30:74:7b:dd:36:af:ba:bd:a3:e2:ac:37:45:a1:
67:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:30:ED:22:1B:F4:12:2F:A0:A6:92:00:40:F2:57:46:43:31:7A:FD
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/DTDtIhv0Ei-gppIAQPJXRkMxev0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.44.0/23
Signature Algorithm: sha256WithRSAEncryption
49:07:50:1b:25:04:a0:19:17:2f:91:d0:ff:9a:cb:fb:29:24:
02:c0:e4:75:a6:5f:4c:c7:04:ce:ee:a8:dd:9d:1c:5b:2d:5d:
b4:6b:74:cd:3b:64:ae:55:cc:f8:c9:f0:9e:5e:25:1d:d8:44:
55:66:39:a1:5e:21:59:8e:88:51:90:9d:62:bd:7f:db:8f:ec:
d0:83:99:4a:a2:d0:03:61:07:88:76:9a:2a:72:cd:3f:e2:e3:
5e:72:75:58:b9:5c:b7:ed:62:2d:d9:d0:96:68:73:f1:11:05:
e8:b8:ea:e5:ae:5a:23:5f:52:78:7d:0e:02:e4:09:ae:11:6b:
aa:0b:e4:2b:a4:0f:d5:87:3b:be:fd:3b:60:94:7c:b3:cb:1b:
4c:0b:bf:df:cc:fb:83:1a:16:ac:b3:62:ca:2e:82:8c:2f:f8:
b2:74:da:e7:0a:07:70:3f:f9:ab:2a:74:f5:c9:b1:53:1c:98:
5c:9a:60:30:d2:ac:3f:60:b5:b7:03:c7:a8:de:47:b5:91:5a:
70:ba:2e:ee:80:df:e0:92:a6:ba:3c:f2:e0:56:1b:9e:c1:a1:
9e:ff:f5:8c:d7:29:ae:d0:22:63:5e:63:93:96:a1:7c:b1:ed:
c7:36:22:7b:9c:b2:53:95:0a:c8:c1:11:06:1c:35:09:87:1b:
ee:65:55:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 24 17:53:38 2023 by rpki-client on console-ams.rpki-client.org